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1 Remarks 

2 

3 Drawings 
4 

5 Figures 13-15 should be designated by a legend such as -Prior Art- because 

6 only that which is old is illustrated. See MPEP § 608.02(g). 
7 

8 The drawings are objected to under 37 CFR 1 .83(a) because they fail to show 

9 the proper paths of communication for elements S501 , S502, and S503 of Fig. 10 as 

10 described in the specification. Any structural detail that is essential for a proper 

1 1 understanding of the disclosed invention should be shown in the drawing. MPEP § 

12 608.02(d). 
13 



14 The drawings are objected to as failing to comply with 37 CFR 1 .84(p)(5) 

1 5 because they do not include the following reference sign(s) mentioned in the 

16 description: reference signs (i.e. A1 1 , A50, B21 , B80) are found beginning on page 2, 

17 line 25, and are described throughout the entirety of the description. 
18 

19 Corrected drawing sheets in compliance with 37 CFR 1 .121(d) are required in 

20 reply to the Office action to avoid abandonment of the application. Any amended 

21 replacement drawing sheet should include all of the figures appearing on the immediate 

22 prior version of the sheet, even if only one figure is being amended. The figure or figure 
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1 number of an amended drawing should not be labeled as "amended." If a drawing figure 

2 is to be canceled, the appropriate figure must be removed from the replacement sheet, 

3 and where necessary, the remaining figures must be renumbered and appropriate 

4 changes made to the brief description of the several views of the drawings for 

5 consistency. Additional replacement sheets may be necessary to show the renumbering 

6 of the remaining figures. Each drawing sheet submitted after the filing date of an 

7 application must be labeled in the top margin as either "Replacement Sheet" or "New 

8 Sheet" pursuant to 37 CFR 1.121(d). If the changes are not accepted by the examiner, 

9 the applicant will be notified and informed of any required corrective action in the next 

10 Office action. The objection to the drawings will not be held in abeyance. 

1 1 In addition to Replacement Sheets containing the corrected drawing figure(s), 

12 applicant is required to submit a marked-up copy of each Replacement Sheet including 

13 annotations indicating the changes made to the previous version. The marked-up copy 

14 must be clearly labeled as "Annotated Sheets" and must be presented in the 

1 5 amendment or remarks section that explains the change(s) to the drawings. See 37 

16 CFR 1.121(d)(1). Failure to timely submit the proposed drawing and marked-up copy 

17 will result in the abandonment of the application. 
18 

19 

20 

21 
22 
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1 Specification 

2 
3 

4 The disclosure is objected to because of the following informalities: Specification 

5 contains the misspellings of 'security' (page 2, par. 2) and 'invention' (page 8, par. 4). 

6 Appropriate correction is required. 
7 

8 35 U.S.C. 112, first paragraph, requires the specification to be written in "full, 

9 clear, concise, and exact terms." The specification is replete with terms which are not 

10 clear, concise and exact. The specification should be revised carefully in order to 

1 1 comply with 35 U.S.C. 112, first paragraph. Examples of some unclear, inexact or 

12 verbose terms used in the specification are: "the number of transferring the 

1 3 communication management table is large", "invention aims to reduce the number of 

14 transferring the communication management table" (page. 3), and "a secret key for 

1 5 secret key communication exchanger for sharing a secret key for secret communication 

1 6 used for secret communication with the other encryptor through the Internet, with the 

1 7 other encryptor by using the public key included in the communication management 

1 8 table of the encryptor side" (page. 9). 
19 

20 A substitute specification in proper idiomatic English and in compliance with 37 

21 CFR 1.52(a) and (b) is required. The substitute specification filed must be accompanied 

22 by a statement that it contains no new matter. 
23 

24 
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1 Claim Objections 

2 

3 Claim 3 is objected to because of the following informalities: Line 14, should 

4 read "to be stored in the encryptor" instead of "to be store in the encryptor". Appropriate 

5 correction is required. 
6 

7 Claim Rejections - 35 USC § 112 

8 The following is a quotation of the second paragraph of 35 U.S.C. 112: 

9 The specification shall conclude with one or more claims particularly pointing out and distinctly 
1 0 claiming the subject matter which the applicant regards as his invention. 

11 

12 Claims 1 and 12 are rejected under 35 U.S.C. 112, second paragraph, as being 

13 indefinite for failing to particularly point out and distinctly claim the subject matter which 

14 applicant regards as the invention. 

15 Claim 1 and 12 recite the limitation "the encryptor" in lines 25 and 36 (claim 1) 



16 and lines 16, 25, 28 (claim 12). There is insufficient antecedent basis for this limitation 

17 in the claim. For the purposes of examination, it will be presumed that the applicant is 

1 8 referring to "an encryptor". 
19 

20 

21 Claim Rejections - 35 USC § 103 

22 

23 The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

24 obviousness rejections set forth in this Office action: 
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2 
3 
4 
5 
6 
7 



(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 



Claims 1 - 12 are rejected under 35 U.S.C. 103(a) as being unpatentable 



8 over Arrow et al., "Method and Apparatus for Configuring a Virtual Private 

9 Network", U.S. Patent 6,226,751 B1 in view of Matchefts et al., "System for 

10 Updating Selected Part of Configuration Information Stored in a Memory of a 

1 1 Network Element Depending on Status of Received State Variable", U.S. Patent 

12 6,128,656. 

1 3 Arrow et al. discloses a system for allowing the flexible creation and modification 

14 of virtual private networks (Arrow et al., col. 3, lines 39-41). The system comprises a 

15 plurality of virtual private network units ('encryptors'), which are managed by a VPN 

16 management station ('manager') (Arrow et al., Abstract; Fig. 1). The VPN units are 

17 used to encrypt and secure communications over a public network (Arrow et al., col. 2, 

18 lines 29-30, 50-67; col. 3, lines 8-16). The VPN management station controls the VPN 

19 units by managing the communication management information necessary for 

20 communication between units (Arrow et al., col. 6, lines 1-3). VPN units store 

21 communication management information in tables residing in memory (Arrow et al., col. 

22 7, lines 1,2; col. 8, lines 28-38). Thus, Arrow et al. describes a VPN system comprising 

23 plural encryptors and a manager for creating virtual private networks over a public 

24 network and for communicating communication management information between 

25 encryptors and the manager. However, Arrow et al., does not detail the system 

26 components necessary to maintain concurrency of the communication management 
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1 information contained by the plural encryptors and the manager (Arrow et al., col. 7, 

2 lines 65, 66). 

3 Matchefts et al. discloses system components for maintaining concurrency of 

4 communication management information in a system comprising network devices and a 

5 network manager. To affect consistency of communication management information, 

6 the network manager installs and updates the communication management information 

7 in the network devices as well as maintains a storage means for keeping the reconciled 

8 communication management information of each device (Matchefts et al., col. 1, lines 

9 47-59; col.3, lines 1-4). Most notably, Matchefts discloses the use of network device 

10 tables containing network communication management information, including variables 

1 1 used to identify the timeliness of the information (Matchefts et al., col. 3, lines 34-51). 

12 Also, Matchefts et al. discloses a network manager that examines the communication 

13 management tables of a network device, and decides to perform synchronization 

14 operations depending on the identifiers ("variables") contained within the tables 

15 (Matchefts et al., col. 5, line 65 - col. 6, line 8). Thus, Matchefts et al. describes system 

16 components usable in a network system for maintaining concurrency of network 

17 communication management information. 

18 It would be obvious to one of ordinary skill in the art to combine the configuration 

1 9 concurrency components of Matchefts et al. with the VPN system of Arrow et al. 

20 because it is obvious that a system for dynamically establishing and configuring network 

21 elements would also need components for establishing conformity of network 
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1 information so that communications over the public network between a plurality of 

2 elements can be maintained. 
3 

4 Regarding claim 1 , the combination of Arrow et al. and Matchefts et al. disclose a 

5 communication management table transfer system comprising: 

6 plural encryptors connected to each other through Internet (Arrow et al., Fig. 1 , 

7 elems. 115, 125, 100). 

8 a manager which manages the communication management table used for 

9 communication among the plural encryptors (Matchefts et al., col. 5, line 65 - col. 6, line 

10 8). 

1 1 wherein each of the plural encryptors includes: 

1 2 a communication management table memory of an encryptor side for 

1 3 storing a communication management table of the encryptor side which is the 

14 communication management table to be stored in the each of the plural 

15 encryptors (Matchefts et al., col. 3, lines 15-19). 

1 6 communication management table version memory of the encryptor side 

1 7 for storing a communication management table version of the encryptor side 

1 8 which is a version of the communication management table of the encryptor side 

19 (Matchefts et al., col. 3, lines 34-51; col. 6, lines 4-8, 57-62). As shown by 

20 Matchefts et al., the table stored in memory, contains variables used to identify 

21 the timeliness of the contained information. Based upon these variables, the 
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1 manager can choose to update the communication management information. 

2 Thus, these variables serve the purpose as version identifiers. 

3 and a communication management table version sender for sending the 

4 communication management table version of the encryptor side to the manager 

5 The combination of Arrow et al. and Matchefts et al. shows the sending/receiving 

6 means for the encryptors (Arrow et al., Fig. 7, elems. 717, 719). It also discloses 

7 that the encryptors send to the manager communication management 

8 information including version identifying variables (Matchefts et al., Abstract). 

9 wherein the manager includes: 

1 0 a communication management table memory of a manger side for storing 

1 1 a communication management table of the manager side which is the 

1 2 communication management table to be stored in the manager (Matchefts et al., 

13 Fig. 1, elems. 14, 30, 32). 

14 a communication management table version memory of the manager side 

1 5 for storing a communication management table version of the manager side 

1 6 which is a version of the communication management table of the manager side 

17 (Matchefts et al., Abstract). As disclosed, the manager contains along with the 

18 communication management information tables in memory, stored version 

1 9 identifying variables. 

20 a communication management table version receiver for receiving the 

21 communication management table version of the encryptor side from the 

22 encryptor (Matchefts et al., Fig. 2, elems. 50, 56). 
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1 a communication management table version checker for checking and 

2 finding mismatch of the communication management table version of the 

3 encryptor side received and the communication management table version of the 

4 manager side (Matchefts et al., Fig. 2, elems. 56; col. 6, lines 4-7). 

5 a communication management table sender for sending the 

6 communication management table of the manager side when the mismatch is 

7 found by the communication management table version checker (Matchefts et 

8 al., col. 6, lines 30-36). 

9 wherein an encryptor further includes a communication management table 



1 0 receiver for receiving the communication management table of the manager side from 

1 1 the manager. The combination of Arrow et al. and Matchefts et al. shows the 

12 sending/receiving means for the encryptors (Arrow et al., Fig. 7, elems. 717, 719). It 

13 also discloses that the encryptors receive from the manager network configuration 

14 information to be stored in tables (Matchefts et al., col. 3, lines 1-20). 

1 5 and wherein the communication management table memory of the encryptor side 

1 6 stores the communication management table of the manager side received by the 

1 7 communication management table receiver as the communication management table of 

18 the encryptor side (Matchefts et al., col. 3, lines 1-20, 34-51). 
19 

20 Regarding claim 2, the combination of Arrow et al. and Matchefts et al. disclose: 

21 wherein the communication management table sender further sends the 
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1 communication management table version of the manager side when the mismatch is 

2 found by the communication management table version checker (Matchefts et al., Fig. 

3 2, elems. 56; col. 6, lines 4-7, 30-36). 

4 wherein the communication management table receiver further receives the 

5 communication management table version of the manager side from the manager 

6 (Matchefts et al., col. 3, lines 1-20; ). The combination of Arrow et al. and Matchefts et 

7 al. discloses that the encryptors receive from the manager network configuration 

8 information to be stored in tables. Because the tables contain version identifying 

9 variables, a concurrency update with the manager would cause the encryptors to 

10 receive updated version identifying variables. 

1 1 wherein the communication management table version memory of the encryptor 

1 2 side stores the communication management table version of the manager side received 

1 3 by the communication management table receiver as the communication management 

14 table version of the encryptor side (Matchefts et al., col. 3, lines 1-20; ). 
15 



16 Regarding claim 3, the combination of Arrow et al. and Matchefts et al. disclose a 

17 manager managing a communication management table used for communication 

18 among plural encryptors connected to each other through Internet comprising: 

19 a communication management table memory of a manger side for storing 

20 a communication management table of the manager side which is the 

21 communication management table to be stored in the manager (Matchefts et al., 

22 Fig. 1, elems. 14,30,32). 
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1 a communication management table version memory of the manager side 

2 for storing a communication management table version of the manager side 

3 which is a version of the communication management table of the manager 

4 (Matchefts et al., Abstract). As disclosed, the manager contains along with the 

5 communication management information tables in memory, stored version 

6 identifying variables. 

7 a communication management table version receiver for receiving a 

8 communication management table version of an encryptor side which is a 

9 version of the communication management table of the encryptor side to be store 

1 0 in the encryptor from each of the plural encryptors (Matchefts et al., Fig. 2, 

11 elems. 50, 56). 

1 2 a communication management table version checker for checking and 

1 3 finding mismatch of the communication management table version of the 

14 encryptor side received and the communication management table version of the 

15 manager side (Matchefts et al., Fig. 2, elems. 56; col. 6, lines 4-7). 

1 6 and communication management table sender for sending the 

1 7 communication management table of the manager side when the mismatch is 

1 8 found by the communication management table version checker (Matchefts et 

19 al., col. 6, lines 30-36). 
20 

21 Regarding claim 4, the combination of Arrow et al. and Matchefts et al. disclose 
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1 wherein the communication management table sender further sends the communication 

2 management table version of the manager side when the mismatch is found by the 

3 communication management table version cftec/cer (Matchefts et al., col. 6, lines 30-36). 
4 

5 Regarding claim 5, the combination of Arrow et al. and Matchefts et al. disclose a 

6 communication management table updater of the manager side for updating the 

7 communication management table of the manager side and the communication 

8 management table version the manager side correspondingly (Matchefts et al., Fig. 2, 

9 elem. 56; col. 6, lines 4-7). The network monitor performs the functions of a table 
10 updater. 

11 

12 Regarding claim 6, the combination of Arrow et al. and Matchefts et al. disclose a 

1 3 communication management table update information receiver for receiving 

14 communication management table update information which is information to be 

1 5 updated within the communication management table of the manager side (Matchefts et 

16 al., Fig. 2, elem. 56; col. 6, lines 4-7). The network monitor performs the functions of a 

17 table update receiver. 
18 

19 Regarding claim 7, it recites the limitations pertaining to the encryptor portion of 

20 claim 1 , and is therefore rejected for the same reasons. 
21 
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1 Regarding claim 8, it recites the limitations of claim 2, and is therefore rejected 

2 for the same reasons. 
3 

4 Regarding claims 9 and 10, the combination of Arrow et al. and Matchefts et al. 



5 disclose wherein the communication management table includes a public key (Arrow et 

6 al., col. 10, lines 7-17). The encryptors use public key cryptography in the process of 

7 securing of communications (Arrow et al., col. 10, lines 7-10). Further, encryptors store 

8 in communication management tables the unique identification and communication 

9 information (i.e. addresses, encryption algorithms, and key management information) of 

10 other encryptors. Thus, it is obvious that the tables would include the unique public keys 

1 1 usable for communication between encryptors. 

1 2 Also disclosed is a secret key and certificate exchanger (Arrow et al., col. 1 0, 

1 3 lines 7-20). The RSA module ("secret/certification key for secret key communication 

14 exchanger 11 ) along with the Key management module supports the encryption and 

15 certification of communications by setting up and exchanging certificates and keys. 
16 



17 Regarding claim 10, it is rejected for the same reason as claim 9. 

18 

1 9 Regarding claim 1 1 , the combination of Arrow et al. and Matchefts et al. disclose 

20 wherein: 

21 the other encryptor is connected to a subnet (Arrow et al., Fig. 1, elem. 110). 
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1 the communication management table includes subnet configuration information 

2 which is information related to a configuration of the subnet (Arrow et al., col. 7, lines 

3 26-40). 

4 the encryptor further comprising: 

5 an Internet communicating unit for communicating with the other encryptor 

6 through the Internet based on the subnet configuration information included in 

7 the communication management table of the encryptor side (Arrow et al., col. 1 0, 

8 lines 31-42). 
9 

10 Regarding claim 12, the combination of Arrow et al. and Matchefts et al. disclose 

1 1 a method for transferring a communication management table used for a 

12 communication management table transfer system including: 

1 3 plural encryptors connected to each other through Internet (Arrow et al., Fig. 1 , 

14 elems. 115, 125, 100). 

1 5 each of which has a communication management table memory of an encryptor 

1 6 side for storing a communication management table of the encryptor side and a 

1 7 communication management table version memory for storing a communication 

18 management table version of the encryptor side (Matchefts et al., col. 3, lines 15-19). 

1 9 a manager managing the communication management table used for 

20 communication among the plural encryptors, which has a communication management 

21 table memory of a manager side for storing a communication management table of the 

22 manager side and a communication management table version memory for storing a 
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1 communication management table version of the manager side (Matchefts et al., Fig. 1 , 

2 elems. 14, 30, 32). 



3 the method comprising: 

4 sending the communication management table version of the encryptor 

5 side to the manager by the encryptor (Matchefts et al., Abstract). 

6 receiving the communication management table version of encryptor side 

7 from the encryptor by the manager (Matchefts et al., col. 5, line 64 - col. 6, line 

8 8). 

9 checking and finding mismatch of the communication management table 

1 0 version of the encryptor side received and the communication management table 

1 1 version of the manager side by the manager (Matchefts et al., col. 5, line 64 - 

12 col. 6, line 8). 

1 3 sending the communication management table of the manager side by the 

14 manager when the mismatch is found by the checking and finding (Matchefts et 

15 al., col. 6, lines 30-36). 

1 6 receiving the communication management table of the manager side from 

1 7 the manager by the encryptor. The combination of Arrow et al. and Matchefts et 

18 al. shows the sending/receiving means for the encryptors (Arrow et al., Fig. 7, 

19 elems. 717, 719). It also discloses that the encryptors receive from the manager 

20 network configuration information to be stored in tables (Matchefts et al., col. 3, 

21 lines 1-20). 
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1 and storing the communication management table of the manager side 

2 received as the communication management table of the encryptor side by the 

3 encryptor (Matchefts et al., col. 3, lines 1-20, 34-51). 
4 

5 

6 Conclusion 

7 
8 

9 Any inquiry concerning this communication or earlier communications from the 

10 examiner should be directed to Jeffery Williams whose telephone number is (571) 272- 

1 1 7965. The examiner can normally be reached on 8:30-5:00. 

12 If attempts to reach the examiner by telephone are unsuccessful, the examiner's 

13 supervisor, Andrew Caldwell can be reached at (571) 272-3868. The fax phone number 

14 for the organization where this application or proceeding is assigned is 703-872-9306. 

15 Information regarding the status of an application may be obtained from the 

16 Patent Application Information Retrieval (PAIR) system. Status information for 

17 published applications may be obtained from either Private PAIR or Public PAIR. 

18 Status information for unpublished applications is available through Private PAIR only. 

19 For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 

20 you have questions on access to the Private PAIR system, contact the Electronic 

21 Business Center (EBC) at 866-217-9197 (toll-free). 

22 QmknidCd^l 

23 ANDREW CALDWELL 

SUPERVISORY PATENT EXAMINER 



